Tech Stack

Description

You will support the design, implementation, and management of Roku's end-to-end security systems, including SIEM/SOAR tooling, threat intelligence platforms, and incident response. Collaborate across teams to develop strong security practices and protect a global user base.

Requirements

• Strong understanding of SIEM, EDR, and cloud security services (e.g., AWS GuardDuty)
• Experience with automation and playbook development in SOAR environments
• Experience creating incident response plans and leading incident response efforts
• Knowledge of threat actor TTPs and mitigation strategies
• Strong understanding of network security principles and encryption technologies

Responsibilities

• Design and implement information security systems and frameworks for threat prevention, detection, and mitigation
• Manage and optimize SIEM platforms and security infrastructure
• Detect and respond to security incidents, investigate attack vectors, and lead containment efforts
• Conduct threat hunting, tune security tools, and refine detection rules
• Oversee vulnerability management lifecycle, reporting, and stakeholder engagement